A project to speed up the process of reviewing an AWS account’s IAM configuration. Purpose The goal of the AWS IAM auth system is to apply and enforce access controls on actions and resources in AWS. This tool helps identify if the policies in place will...

ntlmRelayToEWS is a tool for performing ntlm relay attacks on Exchange Web Services (EWS). It spawns an SMBListener on port 445 and an HTTPListener on port 80, waiting for incoming connection from the victim. Once the victim connects to one of the listeners, an NTLM...

CloudSploit scans is an open-source project designed to allow detection of security risks in an AWS account. These scripts are designed to run against an AWS account and return a series of potential misconfigurations and security risks. InstallationEnsure that NodeJS...

Advanced search tool and automation in Github. This tool aims to facilitate research by code or code snippets on github through the site’s search page. MOTIVATION Demonstrates the fragility of trust in public repositories to store codes with sensitive...